blockchain for optimized security and energy management ...• address tier-bypassing (ferc order...
TRANSCRIPT
11
Blockchain for Optimized Security and Energy
Management (BLOSEM)
Sydni Credle
David Tucker
Lab PartnersLead Laboratory
Tony Markel
Dylan Cutler
Mark Bryden
Grant Johnson
Mayank Malik
David Chassin
Sri Nikhil Gourisetti
Bev Johnson
Spring FE Project Review Meeting – May 19, 2021
David Tucker, NETL
Grant Johnson, Ames Laboratory
22
Agenda
➢ Project Objectives
➢ Energy Use Cases
➢Unified Testing Platform
➢ BLOSEM Use Case Demonstrations
➢ Current State of Blockchain Research
33
BLOSEM Goals & Objectives
• Create a multi-lab, unified testing platform (BLOSEM UTP) that has interoperability to support a wide variety of blockchains. This testing environment will be representative of the modern grid of the future by encompassing generation, transmission, distribution, and end user (edge) for the electric grid.
• Identify and implement specific use cases that leverage inherent features of blockchain & ledger-based technologies to prevent, detect, and mitigate cyber-attacks.
• Accelerate the pipeline of validated cyber-physical security concepts from laboratory to utility sector, de-risking through standardized metrics and testing.
Blockchain for Optimized Security and Energy Management (BLOSEM)
GMLC Project 5.2.3 : Secure Communications of Information used for Grid Operations, for Normal
Operations, and/or during Emergency Response
Sponsors:
44
BLOSEM Project Partners
UTILITY BLOCKCHAIN INDUSTRY GROUP (UBIG)
Energy Web Foundation
Labs
Contributors
Utilities
Advisors
Southern California Edison
55
BLOSEM Project Status
30
-AP
RIL
-20
22
21
-MA
Y-2
02
1
17
-DEC
-20
20
30
-OC
T-2
02
1
Use Case Selection
Preliminary Design
Detailed Design
Implementation
Implementation Implementation
Demonstration
Today
ConclusionJournal Article
6
USE CASE DOWN SELECTION
77
Energy Blockchain Use Cases
Utility Communications and Configuration Management
SDN for control center and substation coordination (Sub-case # 1)
SDN for control center and substation coordination (Sub-case #2)
Replacing Cross-Utility Exchanges
Remote DER Control and Coordination
1
2
3
4
Device/Sensor Coordination and Data Integrity
Grid automation, sensor integration, autonomous data acquisition from grid assets
Dynamic Controls of Demand Response from Generation
Create an access protected and immutable library of Process Knowledge
Securing the data and algorithms used for parallel performance monitoring and digital twins
Establish Immutable and Access Controlled Historian
7
5
6
8
9
Blackstart
Grid Automation, System Segmentation, and Blackstart
Optimizing Restart from System Interruptions (blackstart, black sky, etc.)
12
13
Market
Grid Services Marketplace (Energy Focus)
14
Supply Chain
Secure ID (Identity Management)
10
11Supply Chain Security, Life Cycle Monitoring, and Real-time Auditing
88
Use Case Down Selection
ID Category Title
1Utility Communications and
Configuration ManagementSDN for control center and substation coordination: Integrity check for patch
management
2SDN for control center and substation coordination: Data coordination
between SDN planes
3 Remote DER Control and Coordination
4 Replacing Cross-Utility Exchanges
5 Device/ Sensor Coordination
and Data Integrity
Grid automation, sensor integration, autonomous data acquisition from grid
assets
6 Dynamic Controls of Demand Response from Generation
7 Create an access protected and immutable library of Process Knowledge
8Securing the data and algorithms used for parallel performance monitoring
and digital twins
9 Establish Immutable and Access Controlled Historian
10 Supply Chain Secure ID (Identity Management)
11 Supply Chain Security, Life Cycle Monitoring, and Real-time Auditing
12 Blackstart Grid Automation, System Segmentation, and Blackstart
13 Optimizing Restart from System Interruptions (blackstart, black sky, etc.)
14 Transactive Markets Grid Services Marketplace (Energy Focus)
99
Final Selection of Use Cases
Supply Chain
Security, Life Cycle
Monitoring, and Real-
time Auditing
Dynamic Controls of
Demand Response
from Generation
• Improve asset lifecycle
tracking process by logging
events that change the
configuration and relevance of
an asset to operations
• Valid for manufacturer to
delivery to install to
maintenance to
decommissioning
• Timescale: Event-driven
• Facilitate DER aggregators
(DERA) bidding into both the
day-ahead (DA) and real-time
(RT) energy markets
• Validate that expected
performance of the DERA
does not cause challenges for
secure distribution system
operation
• Timescale: minutes; hours/day
DER Coordination and
Control: Supporting Secure
Wholesale Market
Participation and
Information Exchange with
Generation
• Facilitate dynamic controls for
generation application by
improving authenticity &
integrity of change requests to
operations
• Valid for responding to load
demand changes and
frequency regulation
• Timescale: Seconds;
Continuous
10
BLOSEM UNIFIED TESTING PLATFORM
11
UTP Core – Scope and Objectives
Objectives:
Enable the project goal of de-risking and accelerating Blockchain applications for energy systems:
• Enable the ability to rapidly connect blockchain solutions with grid emulation environments, including hardware-in-the-loop and co-
simulation configurations
• Decouple the dependencies of the specific blockchain under test to enable modularity, interoperability, and reusability to more rapidly
connect and evaluate diverse blockchain solutions
• Develop core functionality to enable the flow of data and commands in a use case agnostic manner, easily extendible to new grid
emulation system configurations
Core Functional Responsibilities:
• Connectivity
‒ Communication interfaces for providing the incoming/outgoing requests and events
• Control and Data Flow
‒ Platform for enabling the flow of information. Extends interfaces to process and route from source to destination.
• Time Synchronization and Management
‒ Enable the coordination of time within asynchronous, concurrent environments that may need to synchronize for shared data and operations.
• Testing Infrastructure
‒ Platform for hosting, recording, and analyzing the testing metrics for the Blockchain and the Use Case
• System Automation and Data Orchestration
‒ Enabling configurability and automation of defining resources and connections within the BLOSEM environment.
1212
UTP Core Component Responsibilities
BlockchainNodes
Blockchain Networks
Network ServicesExchange
Blockchain Node or Network
Services
Grid EmulationNetwork Services
Exchange
Grid EmulationNetworks
Grid EmulationNode or Network
Services
Grid Emulation Nodes
UTP Core
5
1
2
3
4
ConnectivityBlockchain & Lab
Control & Data Flow
TimingBlockchain, Co-Simulation, &
Lab
TestingBlockchain & Use Case
OrchestrationConfigure & Deploy
Co
-Sim
ula
tio
nH
IL O
rch
est
rati
on
13
UTP Core – Framework Components
Network ServicesExchange
Networks
Node or NetworkServices
NodesNode or NetworkServices
Nodes
Network ServicesExchange
Networks
Grid Simulators(e.g. GridLab-D, OpenDSS)
Physical systems simulators (e.g., generation assets, DER)
Hardware in the loop
On-chain ledger
Access controls
Policies
Cloud Peer nodes
On-prem peer nodes
UTP Core
DSO/ISO Federates
Blockchain network
ConsensusSmart
contracts
Off-chain database
User Interface
API(s) or Agents
AP
I Gat
ew
ay
Supervisory Applications
Co-sim Platform
HIL Orchestration
I/OHIL Platform
Process & Route
Co-Simulation PlatformOrchestration
User Interfaces & Testing Applications
1414
UTP Core – Testing and Evaluation
Providing logging and application infrastructure for measuring the performance of a blockchain solution to
meet the needs of use case tasks
Preliminary categories of testing metrics:
• Latency
• Throughput
• Repeatability
• Failure Rate
• Scalability
• Transaction Scheduling
• Privacy
• Security
15
USE CASE – SUPPLY CHAIN
16
Use Case Research Goals:• Is the device or software that shipped the same asset that was received?• Is the device or software deployed in operations the same asset that continues to be installed and operating?• What is the risk introduced and the urgency of remediation when a vulnerability has been discovered or a cyber
incident has occurred?• Can this traceability and risk assessment be applied to hardware and software sub-components?
• What vulnerability and cyber incident information is required to be shared broadly across organizations, and what must be kept to sharing within sub-groups of the network stakeholders?
Use Case Pain Point Objectives:• Asset information isn’t trusted or traceable.• Asset tampering, cloning, and imposter device• Missing or limited asset information• Asset vulnerability and/or cyber threat issues aren’t widely shared.• Not all information is digitized.• Opportunity to automate the impact assessment of a cyber incident or vulnerability
Supply Chain – Scope and Objectives
1717
➢ Digital Objects for Lifecycle Information
• Catalog Assets
o Vendor published device definition – HW/SW
subcomponents and linked to vulnerabilities
• Operations Assets
o Operationally deployed asset with installation details and
custom configurations
• Vulnerability Events
o Participant disclosed metadata linked to a Catalog item
• Maintenance Events
o Logging changes to the configuration of an operationally
deployed asset (e.g. repairs, updates, location, etc.)
➢ Applying to three categories of assets:
• Software Applications
o Executables and dependencies installed in operations
• Embedded Systems
o Electrical, mechanical, and embedded software sub-
components
• Hardware Only Sensors
o Supplementing with compute to participate
➢ Embedding functions for challenge/response re-
verification of device hosted configuration
Supply Chain – Implementation Plans
18
Supply Chain – Blockchain Architecture
ORDERER
ORDERER
ORDERER
Peer Node(s)
Catalog AssetAPI
Express JS
OrderingOrganization
Peer Node(s) Peer Node(s)
Peer Node(s)
Peer Node(s)
Peer Node(s)
CAUsersAdminsAffiliations
MSP
VendorOrganization
CAUsersAdminsAffiliations
MSP
UtilityOrganization
CAUsersAdminsAffiliations
MSP
Regulator / Threat Info Provider Organization
Vulnerability EventAPI
Express JS
Operations AssetAPI
Express JS
Maintenance EventAPI
Express JS
Notify VerifyVerify
ORDERER
ORDERER
1919
➢ Hardware Bill of Materials for logic bearing
components
➢ Software Bill of Materials for NTIA minimum
fields and dependency relationships
• NTIA minimum fields
➢ Communication – Port / Protocol for automating
network control
➢ Installation Metadata for automating Risk
assessment decisions
• Owner
• Location – Site ID, Business Unit
• Impact – PERA Zone, Category, Classification
Supply Chain – Metadata Discussion
20
USE CASE – DER COORDINATION & CONTROLS
21
DER Coordination Use Case
22
DER Coordination Scope & Objectives
In Scope:
• Flexible access controls + address grid constraints
• Address tier-bypassing (FERC Order 2222)
• Double-counting, distribution factor
• Contract mediation (delegation of control authority)
• Communication with utility-owned generation
Out of Scope:
• Control system design (leverage from existing work)
• Non-FERC 2222 architectures
• Peer-to-peer markets (markets in general)
Entities in Scope:
• Distributed Energy Resource (DER) owners – through lab resources
• DER Aggregators (DERA)
• Distributed System Operators (DSO)
• Utility owned generation
• Independent System Operators (ISO) / Regional Transmission Operators (RTO) – No SCUC/SCED modeled
Objectives:
• Examine and demonstrate BLOSEM platform components for blockchain-based grid operations use-cases.
• Facilitate distributed communications architecture across disparate DER owners and energy entities.
• Establish trust anchors with integrity and confidentiality through blockchain in a trustless environment.
23
CURRENT STATE OF BLOCKCHAIN RESEARCH
24
BLOSEM Review Article for Publication
A Survey of Blockchain Research & Development
Activities
Activities
• Literature review/survey of
blockchain projects
• Mapping use cases to
BLOSEM categorization
matrix
Scopes
Blockchain projects and R&D efforts within U.S.
DOE and U.S. Power utility industries
•BLOSEM Categorization Matrix; Energy System Domains and Blockchain Properties
•R&D Opportunities and Recommendations
• Early September – submission for journal publication
Outcomes
25
CONCLUSION
2626
Conclusion
▬ BLOSEM team seeks to create a multi-lab, unified testing platform (BLOSEM UTP) that has interoperability to
support a wide variety of blockchains and accelerate the pipeline of security solutions from laboratory to
industry
▬ Surveyed and down selected Energy use cases of Blockchain
• Inputs collected from within the project team, industry advisors, and DOE program managers
• Delivered the Use Case Milestone Report in September 2020
▬ Developing a Unified Testing Platform to rapidly connect new use cases to laboratory grid emulation
environments and evaluate new blockchain solutions
• Abstracting Blockchain connections from Laboratory components
• Designing evaluation frameworks for Use Case fit to a Blockchain under test
• Closed the Preliminary Design Requirements Review in February 2021
▬ Publishing a journal article for the current state of Blockchain energy research and a framework for assessing
the Blockchain research portfolio
2727
Acknowledgment and Disclaimer
▬ This material is based upon work supported by the Department of Energy Award GMLC project #5.2.3
▬ This report was prepared as an account of work sponsored by an agency of the United States
Government. Neither the United States Government nor any agency thereof, nor any of their
employees, makes any warranty, express or implied, or assumes any legal liability or responsibility for
the accuracy, completeness, or usefulness of any information, apparatus, product, or process
disclosed, or represents that its use would not infringe privately owned rights. Reference herein to
any specific commercial product, process, or service by trade name, trademark, manufacturer, or
otherwise does not necessarily constitute or imply its endorsement, recommendation, or favoring by
the United States Government or any agency thereof. The views and opinions of authors expressed
herein do not necessarily state or reflect those of the United States Government or any agency
thereof.
2828
Thank you!
Sydni Credle (Co-PI) [email protected]
David Tucker
Lab PartnersLead Laboratory
Tony Markel (Co-PI)
Dylan Cutler
Grant Johnson
Mark Bryden
Mayank Malik
David Chassin
Sri Nikhil Gourisetti
Bev Johnson